Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

mouk

My feedback

  1. 1,027 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  117 comments  ·  XG Firewall » Webserver Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    This should have been implemented years ago. Amazing. It makes you wonder if they are actually reading/acting on the ideas here, of if they just provide this as a way to express our frustrations among each other.

    An error occurred while saving the comment
    mouk commented  · 

    What's the use of being able to vote for features, and see that 827 people say this is needed BADLY, and all sophos does is say "we are considering this" (almost THREE YEARS AGO)

    Why do we bother to vote for requests, or create them??

    mouk supported this idea  · 
  2. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    Yes, client heartbeat status for devices on WAN would be very welcome! It would enable us to allow specific traffic from WAN for 'our' heartbeat devices only.
    For example: We could expose our laptop/desktop management software to WAN, and we would be able to manage clients, even when they are not in the VPN.
    Regular unknown (any) WAN clients (= non-managed clients by us, or unhealthy heartbeats) would simply be denied access.
    (I guess this the same as issue https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/36586261-heartbeat-client-monitoring-regardless-of-location)

    mouk supported this idea  · 
  3. 6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
    mouk supported this idea  · 
    An error occurred while saving the comment
    mouk commented  · 

    I hope this feature is about heartbeat from WAN... Yes, client heartbeat status for devices on WAN would be very welcome! It would enable us to allow specific traffic from WAN for 'our' heartbeat devices only.
    For example: We could expose our laptop/desktop management software to WAN, and we would be able to manage clients, even when they are not in the VPN.
    Regular unknown (any) WAN clients (= non-managed clients by us, or unhealthy heartbeats) would simply be denied access.

  4. 177 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    20 comments  ·  XG Firewall » VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    This is SO badly needed. We are amazed that sophos connect (despite being the new sophos VPN solution) does not support this.
    Please, make this happen sophos! (fortinet has it, cisco has it, it's NEEDED)

    For others reading this: we decided to purchase NCP-E VPN client, it is XG IPsec compatible, and has this function. (with EDU licensing, they are not too expensive) Also TheGreenBow VPN client works perfectly with the XG IPsec VPN, and both have the "GINA" pre-windows-logon functionality.
    And in the case of NCP-E, it can even re-use the VPN credentials for the subsequent windows logon, so users have to type their username/password only once.

    mouk supported this idea  · 
  5. 89 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    12 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    So little work for sophos, such big benefits for us all. PLEASE sophos, just do this.

    mouk supported this idea  · 
  6. 481 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    18 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    Come on. This is not rocket science, and badly needed.

    mouk supported this idea  · 
  7. 45 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    Sophos calls the product Next Generation... but no decent IPv6, no Let's Encrypt, and even no DNSSEC? This is amazing and DNSSEC should be added immediately.

    mouk supported this idea  · 
  8. 64 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    Yes! And also remove the max 1000 IPs limitation for "IP Host" type "IP List", or provide another way to use *many* (50.000+) IPs in one definition.

    mouk supported this idea  · 
  9. 13 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    mouk commented  · 

    The simpler option would be for SMB bookmark, to ASK the user his/her for credentials. (or even simpler: an option to re-use the currently-logged-on users credentials)

  10. 5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  XG Firewall » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    mouk supported this idea  · 
    An error occurred while saving the comment
    mouk commented  · 

    Exactly! Plus in a corporate security-aware environment, who uses a guest account or generic XG stored credentials?
    XG should:
    - ask for credentials
    or
    - offer an option to re-use the currently-logged-on credentials to login again to the SMB server.

  11. 3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    mouk shared this idea  · 
  12. 4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.